AMENDMENTS TO THE CLAIMS 



This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

Listing of Claims: 

1. (Currently amended) A method to facilitate locking an adversary out of 
a network application, comprising: 

receiving at a server a request, including an authentication credential, to 
access the network application, wherein the authentication credential includes a 
user identifier associat e d with a us e r and a specific network address of a user 
device; 

e xamining an audit log to d e t e rmin e if th e us e r id e ntifier has b ee n lock e d 
out from the sp e cific network addr e ss; and 

if the user identifier has been locked out from the specific network 
address, 

_denying access to the network application: and 

oth e rwis e , ch e cking th e auth e ntication cr e dential for validity, and 

if the authentication credential is valid, 

allowing access to the network application, 

otherwise, 

logging a failed attempt in the audit log, 

imposing a lockout for the user identifier from only the 

specific network address after a threshold number of failed 

attempts from the specific network address, 
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if a threshold number of specific network addresses are 
locked out for the user identifier, imposing a global lockout for the 
user identifier, and 

denying access to the network application^ 
wh e r e by th e adversary is prevented from accomplishing an 
attack by masquerading as th e user . 

2 (Canceled). 

3. (Previously presented) The method of claim 1, further comprising: 
removing a lockout after a predetermined period of time. 

4. (Previously presented) The method of claim 1, further comprising: 
manually removing a lockout by an administrator of the server. 

5. (Original) The method of claim 1, wherein the authentication credential 
includes a user name and a password. 

6. (Original) The method of claim 5, wherein checking the authentication 
credential for validity involves: 

verifying that an administrator has authorized access to the network 
application for a combination of the user name and the password; and 
determining if the request violates an access rule in a rule table. 

7. (Original) The method of claim 6, wherein the access rule can specify: 
an allowed time-of-day; 

an allowed number of access attempts; 
an allowed network address; and 
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an allowed network domain. 

8. (Original) The method of claim 1, wherein the network address includes 
an Internet Protocol address. 

9. (Currently amended) A computer-readable storage medium storing 
instructions that when executed by a computer cause the computer to perform a 
method to facilitate locking an adversary out of a network application, the method 
comprising: 

receiving at a server a request, including an authentication credential, to 
access the network application, wherein the authentication credential includes a 
user identifier associat e d with a us e r and a specific network address of a user 
device; 

examining an audit log to determin e if th e user id e ntifier has b ee n lock e d 
out from th e sp e cific n e twork address; and 

if the user identifier has been locked out from the specific network 
address, 

denying access to the network application; and 

otherwise, checking the auth e ntication cr e d e ntial for validity, and 

if the authentication credential is valid, 
allowing access to the network application, 
otherwise, 

logging a failed attempt in the audit log, 

imposing a lockout for the user identifier from only the 

specific network address after a threshold number of failed 

attempts from the specific network address, 
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22 if a threshold number of network addresses are locked out 

23 for the user identifier, imposing a global lockout for the user 

24 identifier, and 

25 denying access to the network application 

26 wh e r e by the adversary is pr e v e nt e d from accomplishing an 

27 attack by masqu e rading as th e us e r . 

1 10 (Canceled). 



1 11. (Previously presented) The computer-readable storage medium of 

2 claim 9, the method further comprising: removing a lockout after a predetermined 

3 period of time. 

1 12. (Previously presented) The computer-readable storage medium of 

2 claim 9, the method further comprising: manually removing a lockout by an 

3 administrator of the server. 



1 13. (Original) The computer-readable storage medium of claim 9, wherein 

2 the authentication credential includes a user name and a password. 

1 14. (Original) The computer-readable storage medium of claim 13, 

2 wherein checking the authentication credential for validity involves: 

3 verifying that an administrator has authorized access to the network 

4 application for a combination of the user name and the password; and 

5 determining if the request violates an access rule in a rule table. 

1 15. (Original) The computer-readable storage medium of claim 14, 

2 wherein the access rule can specify: 
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1 



3 an allowed time-of-day; 

4 an allowed number of access attempts; 

5 an allowed network address; and 

6 an allowed network domain. 

1 16. (Original) The computer-readable storage medium of claim 9, wherein 

2 the network address includes an Internet Protocol address. 

1 17-24 (Canceled). 
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